- The document discusses the importance of effective policy management for governance, risk, and compliance (GRC). It outlines key challenges such as change, inconsistency, and lack of user engagement.
- An effective policy management lifecycle includes determining needs, developing/approving policies, communicating/training, monitoring/enforcing, and measuring/maintaining policies. Technology can help address issues like an inconsistent user experience and lack of auditable records.
- Maturity in policy management progresses from an ad hoc approach to a more integrated, agile system with centralized oversight and accountability. Technology, information architecture, and user experience are important enablers of effective policy management.
28. Questions?
Michael Rasmussen, J.D.
The GRC Pundit & OCEG Fellow
mkras@grc2020.com
+1.888.365.4560
Some of the content we have evaluated is OCEG content which GRC 20/20 has an established relationship to use. Please do not copy
slides or graphics without permission. GRC 20/20 highly recommends you consider OCEG membership at www.OCEG.org.
GRC 20/20 Newsletter
LinkedIn: GRC 20/20
Blog: GRC Pundit
Twitter: GRCPundit
LinkedIn: Michael Rasmussen